Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/n4oTLcY3Eost-Qe_enzL-hN3M14.roa
File: n4oTLcY3Eost-Qe_enzL-hN3M14.roa (raw, json)
Hash identifier: yYjQpvvj0XOqhxeCs5tu9OzNnpM3sE241OTnw9VzGk0=
Subject key identifier: 9F:8A:13:2D:C6:37:12:8B:2D:F9:07:BF:7A:7C:CB:FA:13:77:33:5E
Certificate issuer: /CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Certificate serial: 019E982E46C49E9594F4A3BDF7EA320F1360
Authority key identifier: 9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/n4oTLcY3Eost-Qe_enzL-hN3M14.roa
Signing time: Fri 05 Jun 2026 14:27:09 +0000
ROA not before: Fri 05 Jun 2026 14:27:09 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51847
IP address blocks: 103.24.207.0/24 maxlen: 24
103.76.85.0/24 maxlen: 24
103.100.158.0/24 maxlen: 24
103.137.215.0/24 maxlen: 24
116.206.92.0/24 maxlen: 24
116.206.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/nzEukpe8HSfr60dt6g7hXddWVC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/nzEukpe8HSfr60dt6g7hXddWVC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:98:2e:46:c4:9e:95:94:f4:a3:bd:f7:ea:32:0f:13:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Validity
Not Before: Jun 5 14:27:09 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9f8a132dc637128b2df907bf7a7ccbfa1377335e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:be:a2:6f:01:65:5f:9d:11:58:bb:bb:09:59:
a2:1f:f3:fc:35:71:21:ce:fd:fb:81:46:a7:f7:1e:
9b:50:39:90:8f:06:22:d0:ac:bf:38:86:8b:29:eb:
1e:a0:0b:66:3a:e9:ae:24:f3:4f:95:1a:1d:3e:86:
11:ee:61:b2:a0:8f:ec:77:75:09:b7:ce:cc:94:f6:
52:e8:f1:f7:66:f5:03:c6:6c:d4:22:89:9f:a7:84:
9f:be:b2:ed:ed:91:47:96:af:65:69:99:45:2e:a4:
a7:3c:db:ee:c4:59:69:89:9a:34:da:35:0a:f1:c5:
83:65:7b:8a:07:08:a5:58:e2:d4:aa:86:52:7e:d1:
56:d3:1b:52:3f:30:0d:76:ff:bc:03:ac:45:1d:54:
79:43:ab:3d:8e:7d:0c:c4:49:78:04:fb:7d:b1:cb:
94:d1:25:ee:0f:e3:e3:9c:f4:ed:ba:2e:65:f2:d5:
f9:26:ac:d3:fb:3b:f5:6e:76:df:2a:0c:bb:61:32:
fc:ac:ac:ef:47:8c:2a:aa:66:b9:f0:5e:35:da:19:
db:b2:1c:00:25:11:4c:63:57:9d:1e:3e:58:ab:4f:
0e:e2:88:e9:49:9a:ec:d1:70:bf:c0:52:52:9e:a9:
e0:3a:b4:24:55:d4:5f:9a:3e:4d:1c:cd:11:e7:51:
3e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8A:13:2D:C6:37:12:8B:2D:F9:07:BF:7A:7C:CB:FA:13:77:33:5E
X509v3 Authority Key Identifier:
keyid:9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/n4oTLcY3Eost-Qe_enzL-hN3M14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/nzEukpe8HSfr60dt6g7hXddWVC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.24.207.0/24
103.76.85.0/24
103.100.158.0/24
103.137.215.0/24
116.206.92.0/23
Signature Algorithm: sha256WithRSAEncryption
c0:fc:75:cf:59:7f:e7:da:94:eb:12:ea:40:d3:5d:79:3c:d7:
7e:ad:47:7f:9b:97:55:36:90:66:6e:dd:bc:7e:d3:f2:61:d9:
28:23:32:f3:a5:7f:47:f1:39:7c:3d:39:7d:1c:9a:b0:95:51:
7f:1b:4b:5c:0d:5a:25:55:da:d6:7f:17:76:6f:ee:64:28:85:
f2:27:0a:ba:81:81:02:e4:a1:f1:54:74:92:de:8c:41:83:3b:
30:a3:c4:6a:a8:c2:9a:c2:ea:69:17:7e:8f:f4:30:98:42:55:
0f:22:fe:84:91:52:63:3c:08:56:fb:63:19:b2:33:d5:c1:ab:
8b:6a:1a:e5:2f:02:52:1c:be:04:89:93:50:92:60:a7:8c:bc:
89:d3:04:48:e7:b3:97:68:bd:59:5c:88:19:de:bb:99:c1:90:
6b:a7:32:ea:4c:0c:88:15:a0:07:26:5d:01:96:a9:7f:09:16:
6d:a9:19:9c:f5:3d:a1:77:9e:44:43:87:fe:7e:48:37:cd:f2:
7f:68:75:35:69:1a:91:4d:ed:30:86:ba:3c:77:4f:03:d6:db:
b4:dd:fe:ed:8d:77:54:a3:fa:68:0d:5d:bd:d3:4d:13:9b:0e:
28:5f:5d:89:55:68:83:89:4e:be:b4:b2:25:b9:40:74:6b:39:
30:3a:37:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:23:04 2026 by rpki-client